Could your heartbeat be the password of the future? Hi-tech wristband offers new way to log in

Your unique heartbeat could offer a secure and easy-to-use alternative to remembering dozens of long, complex passwords, according to Bionym, who launched a new “password wristband” today.

Facebook fixes bug that allowed anyone to delete ANY photo

A bug which allowed any Facebook user to delete photos from any other user’s page without their knowledge has earned its discoverer $12,500 under Facebook’s “bug bounty” program – more than 10 times the average payout.

Recipe for disaster? Four in ten “BYOD” owners use no security measures at all

Four out of ten employees who use their own mobile devices at work fail to use basic security measures – and the trend for “BYOD” could be putting company information at risk, according to a new survey.

Facebook spam “earning criminals $200m a year”, researchers claim

Two independent Italian security researchers have investigated the business behind Facebook spam – and estimate that the trade is worth around $200m a year.

Windows 8 picture passwords “can be cracked”, researchers warn

The “picture passwords” used in Windows 8 machines are more vulnerable than Microsoft hoped, a research team claims. An analysis of more than 10,000 picture passwords found that a significant percentage could be cracked by algorithms.

Facebook considers using facial recognition on all profile pictures

Facebook has revealed that it may use facial recognition software to identify people from their profile pictures. The new “feature” was revealed in a change to Facebook’s data use policy, sent out via email to users this week.

Big phish, small pond: How to stay safe from SMS phishing scams

Phishing emails are a sad fact of life, and most of us are used to dealing with them – but cybercriminals are increasingly turning to SMS to reel in their victims. Our tips should help you avoid clicking something you’ll regret.

More than 800,000 Facebook users fall victim to password-harvesting browser malware, researcher claims

Malware disguised as a Facebook video has infected up to 800,000 users machines, according to independent Italian security researchers. The malware hijacks Facebook accounts and web browsers using a fake browser plug-in for Google’s Chrome.

Mobile banking apps pose “serious” safety risks, financial watchdog warns

Mobile banking apps pose an “important risk” to consumers as banks increasingly offer access to banking services via smartphones. A financial watchdog is to investigate the threat of bogus and malicious banking apps.

“Sophisticated” New York Times attack targeted Australian domain name firm

The website of the New York Times briefly disappeared this week, replaced by a banner saying, “Hacked by Syrian Electronic Army” – victim of an attack described as “sophisticated”. Twitter and the Huffington Post were also briefly affected.

Long passwords don’t offer “safe option” as cracker app upgrades

The popular password-cracking app Hashcat has “upgraded” to passwords up to 55 characters – meaning that long passwords (for instance those made up of sentences), can be cracked far more quickly.

The Powerloader 64-bit update based on leaked exploits

A few months ago on this blog I described PowerLoader functionality – including an interesting way for privilege escalation into the explorer.exe system process. The leaked PowerLoader code is also used in other malware families.

Nymaim – obfuscation chronicles

We look at malware delivered by a campaign that has infected thousands of websites around the world – and the various control flow obfuscation techniques that make its analysis as interesting as it is challenging.

Millions of Android users open to attacks due to old versions of OS, FBI warns

Android has become a “primary” target for malware, and nearly half its users are open to attacks due to running old versions of the OS, according to an internal bulletin reportedly from the Department of Homeland Security and the FBI.

One in five adults have fallen victim to hackers – and one in 50 has lost more than $15,000, says British survey

One in five adults has fallen victim to hacks targeting their email accounts, social networking accounts or online bank accounts, according to a British survey conducted by the University of Kent.

How to keep children safe online (without looking over their shoulders all day)

Children come into contact with the internet at a very young age these days – a survey on a parenting site this year said that one in eight children go online before the age of two. Our tips will help keep youngsters safe – and help them enjoy the internet.

Cybercriminals use DDoS attacks as “smokescreens” for major cyber thefts

Millions of dollars have been lost to an “ominous” new hi-tech tactic used by cybercriminals – where a low-powered DDoS attack is used as “cover” for a direct assault on the bank’s payment system.

League of Legends players warned after major security breach

The popular online “battle arena” game League of Legends has suffered a major security breach which exposed account information for North American players, as well as transaction records from 2011 including salted and hashed credit card numbers.

Orbital Decay: the dark side of a popular file downloading tool

Orbit Downloader by Innoshock is a popular browser add-on often used to download embedded videos from sites such as YouTube. But the popular add-on has disturbing hidden functions.

New “anti-phishing” technology uses electronic cards, not passwords

Academics create new “anti-phishing” technology – electronic identity cards which allow secure access to websites, and which could simplify access for people less used to the Internet.

Follow Us

Automatically receive new posts via email:

Delivered by FeedBurner

ESET Virus Radar


Select month
our experts

Rob Waugh

Lysa Myers

Graham Cluley

Jean-Ian Boutin

David Harley

Stephen Cobb

Olivier Bilodeau

Aryeh Goretsky

Benjamin Vanheuverzwijn

Pierre-Marc Bureau

Righard Zwienenberg

Robert Lipovsky

Guest Writer

Cameron Camp

Marc-Etienne M.Léveillé

Joan Calvet

Pablo Ramos

Andrew Lee

Sebastián Bortnik

Copyright © 2014 ESET, All Rights Reserved.